Category: Policy & Legislation
California Consumer Privacy Act of 2018 – Full Text
For your ease of reference, we reproduce here a formatted, hyperlinked copy of the California Consumer Privacy Act of 2018 (CCPA), current as of February 4, 2020. We’ve included in parentheses the general topic for each section, though this our own interpretation and not set out in the CCPA itself. […]
What the American Bar Association’s Formal Opinion 483 Means for Lawyers
Last week, the American Bar Association’s (“ABA”) Standing Committee on Ethics and Professional Responsibility (the “Committee”) issued Formal Opinion 483 (the “Opinion”) that sets forth the ABA’s opinion concerning the need for lawyers to notify clients of data breaches affecting client confidential data. The opinion outlines certain “reasonable” steps the ABA […]
GDPR DPO University – October 18
On Thursday, October 18, Cooley’s cyber/data/ privacy practice will be holding GDPR DPO University in our New York office. The EU General Data Protection Regulation has required many organizations to appoint Data Protection Officers. With demand for DPOs far outstripping the supply, many newly-minted DPOs need to quickly develop data […]
California’s IoT Security Law – Will this Law Really Improve Security?
California’s legislature recently passed SB-327, which is designed to require Internet of Things (IoT) and other “connected device” manufacturers to implement security features into internet connected devices. California Governor Jerry Brown signed the bill into law on September 28, 2018. While the attempt to improve security of these devices is […]
CCPA FAQs Part 2b: CCPA Rights and Other Material Provisions
This post does not reflect amendments to the California Consumer Privacy Act (CCPA) enacted on October 11, 2019. Check back for updates or follow this blog. In our third FAQs installment on the California Consumer Privacy Act of 2018 (the “CCPA” or the “Act”), we focus on the following: the […]
Brazil’s New Data Protection Law: The LGPD
Updated September 3, 2019 Our post on key updates to the LGPD can be found here The global data protection landscape continues to evolve, and Brazil is the latest country to enact an omnibus law governing how organizations collect, use, disclose and otherwise process personal data. Beginning on August 16, […]
Ohio Enacts Liability “Safe Harbor” for Entities That Maintain Specified Cybersecurity Programs
On August 3, 2018, Ohio Governor John R. Kasich announced that he signed Substitute Senate Bill 220 (“SB 220” or “Bill”) that, in part, affords a litigation “safe harbor” to covered entities that implement, maintain, and comply with specified cybersecurity programs. Covered entities, e.g., businesses, sued after a data breach […]
FAQs on the California Consumer Privacy Act of 2018 – Part 2a: The CCPA Rights
This post does not reflect amendments to the California Consumer Privacy Act (CCPA) enacted on October 11, 2019. Check back for updates or follow this blog. In our next two FAQ installments on the California Consumer Privacy Act of 2018 (“CaCPA” or “Act”), we will focus on the individual rights […]
Crypto Up Next for IRS Enforcement
In an effort to maximize its limited resources, the IRS’ Large Business and International Division has been identifying issues that present greater risks of noncompliance. The list of identified issues has been growing since January 2017. Recently, the IRS added cryptocurrency to its list of compliance campaigns. In 2014, the […]
California Passes Sweeping Consumer Privacy Act
On June 27 the California Senate and Assembly unanimously approved the California Consumer Privacy Act of 2018 (CCPA), and Governor Jerry Brown signed it into law the same day. The CCPA was rushed through the legislative process to avoid passage of a more stringent privacy law planned for California’s November […]